Upgraded to VCF Automation 9 and unable to find Orchestrator location for krb5.conf file for remote powershell kerberos authentication
search cancel

Upgraded to VCF Automation 9 and unable to find Orchestrator location for krb5.conf file for remote powershell kerberos authentication

book

Article ID: 419182

calendar_today

Updated On:

Products

VCF Automation

Issue/Introduction

In the Aria Automation 9.0 release the krb5.conf could not be found to configure remote powershell kerberos authentication

Environment

Aria Automation 9.0

Resolution

Create the krb5.conf file manually either using nano or cat

  1. Get the root password and ssh into vcfa: https://knowledge.broadcom.com/external/article?articleNumber=412001
  2. Login as root: sudo -i
  3. Login into the vco-app container: kubectl -n prelude exec -it vco-app-0 -c vco-server-app – bash
  4. Create the /usr/lib/vco/app-server/conf/krb5.conf file: touch /usr/lib/vco/app-server/conf/krb5.conf
  5. Put the krb5.conf content into the file
    1. (Option 1) Using nano: nano touch /usr/lib/vco/app-server/conf/krb5.conf
    2. (Option 2) Using cat: 
      cat << EOF > /usr/lib/vco/app-server/conf/krb5.conf
[libdefaults]
  default_realm = YOURDOMAIN.COM
[realms]
  YOURDOMAIN.COM = {
    kdc = dc.yourdomain.com
    default_domain = yourdomain.com
  }
[domain_realm]
  .yourdomain.com=YOURDOMAIN.COM
  yourdomain.com=YOURDOMAIN.COM
EOF
  1. (For clustered environments) Repeat 3,4,5 for vco-app-1, vco-app-2
Powered by Wolken Software